Determining an entity's cybersecurity risk and benchmarking that risk includes non-intrusively collecting one or more types of data associated with an entity. Embodiments further include calculating a security score for at least one of the one or more types of data based, at least in part, on processing of security information extracted from the at least one type of data, wherein the security information is indicative of a level of cybersecurity. Some embodiments also comprise assigning a weight to the calculated security score based on a correlation between the extracted security information and an overall security risk determined from analysis of one or more previously-breached entities in the same industry as the entity. Additional embodiments include calculating an overall cybersecurity risk score for the entity based, at least in part, on the calculated security score and the weight assigned to the calculated security score.
Legal claims defining the scope of protection, as filed with the USPTO.
4. The method of claim 3, further comprising predicting one or more breaches based on the monitoring.
5. The method of claim 1, further comprising initiating operations to intrusively search for a portion of the data indicative of cybersecurity threats to the entity.
6. The method of claim 1, further comprising normalizing the cybersecurity risk score based, at least in part, on the data indicative of cybersecurity threats to the entity and a size of the entity.
7. The method of claim 1, where the data indicative of cybersecurity threats to the entity comprises at least one type of data selected from the list consisting of: malware infections, breach history, domain name system (DNS) health, social media data, botnet infections, application vulnerabilities, network exploits, patching cadence, and leaked employee credentials.
8. The method of claim 1, wherein collecting non-intrusive data without obtaining permission to collect the non-intrusive data includes collecting non-intrusive data without obtaining permission from the entity for which the cybersecurity risk score is calculated.
11. The non-transitory computer-readable medium of claim 9, where the operations further comprise receiving information that identifies at least one action of the one or more actions that has been completed.
13. The non-transitory computer-readable medium of claim 9 where the operations further comprise initiating operations to intrusively search for a portion of the data indicative of cybersecurity threats to the entity.
14. The non-transitory computer-readable medium of claim 9, where the data indicative of cybersecurity threats to the entity comprise at least one type of data selected from the list consisting of: malware infections, breach history, domain name system (DNS) health, social media data, botnet infections, application vulnerabilities, network exploits, patching cadence, and leaked employee credentials.
15. The non-transitory computer-readable medium of claim 9, wherein collecting non-intrusive data without obtaining permission to collect the non-intrusive data includes collecting non-intrusive data without obtaining permission from the entity for which the cybersecurity risk score is calculated.
20. The system of claim 16, where at least a portion of the data indicative of cybersecurity threats to the entity is collected from publicly accessible data sources.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
March 27, 2020
September 20, 2022
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.